17 matches found
EUVD-2008-6340
Malware in sbrugna...
CVE-2008-6369
SQL injection vulnerability in default.asp in Ocean12 Contact Manager Pro 1.02 allows remote attackers to execute arbitrary SQL commands via the Sort parameter...
Cross site scripting
Cross-site scripting XSS vulnerability in default.asp in Ocean12 Contact Manager Pro 1.02 allows remote attackers to inject arbitrary web script or HTML via the DisplayFormat parameter...
Sql injection
SQL injection vulnerability in default.asp in Ocean12 Contact Manager Pro 1.02 allows remote attackers to execute arbitrary SQL commands via the Sort parameter...
CVE-2008-6370
Cross-site scripting XSS vulnerability in default.asp in Ocean12 Contact Manager Pro 1.02 allows remote attackers to inject arbitrary web script or HTML via the DisplayFormat parameter...
CVE-2008-6370
CVE-2008-6370 : XSS in Ocean12 Contact Manager Pro 1.02 (default.asp) via the DisplayFormat parameter. Remote attackers can inject arbitrary script/HTML. No exploitation details or patch information are provided in the supplied documents.
CVE-2008-6369
The CVE-2008-6369 entry concerns a SQL injection in Ocean12 Contact Manager Pro 1.02. The affected component is default.asp, where the Sort parameter enables remote attackers to execute arbitrary SQL commands. The language in the connected records confirms the vulnerability class and affected pro...
CVE-2008-6369
SQL injection vulnerability in default.asp in Ocean12 Contact Manager Pro 1.02 allows remote attackers to execute arbitrary SQL commands via the Sort parameter...
CVE-2008-6370
Cross-site scripting XSS vulnerability in default.asp in Ocean12 Contact Manager Pro 1.02 allows remote attackers to inject arbitrary web script or HTML via the DisplayFormat parameter...
ocean12cm-sqlxss.txt
--------------------------------------------------------- Portal Name: Ocean12 Contact Manager Pro Version : 1.02 Vendor : http://ocean12tech.com/products/contact Dork: Maintained with the Ocean12 Contact Manager Pro v1.02 Author : PouyaServer , [email protected] Vulnerability : SQL,XSS...
Ocean12 Contact Manager Pro (SQL/XSS/DDV) Multiple Vulnerabilities
No description provided by source. --------------------------------------------------------- Portal Name: Ocean12 Contact Manager Pro Version : 1.02 Vendor : http://ocean12tech.com/products/contact Dork: Maintained with the Ocean12 Contact Manager Pro v1.02 Author : PouyaServer ,...
Ocean12 Contact Manager Pro - SQL Injection Cross-Site Scripting File Disclosure
Ocean12 Contact Manager Pro - SQL Injection Cross-Site Scripting File Disclosure --------------------------------------------------------- Portal Name: Ocean12 Contact Manager Pro Version : 1.02 Vendor : http://ocean12tech.com/products/contact Dork: Maintained with the Ocean12 Contact Manager Pro...
Ocean12 Contact Manager Pro (SQL/XSS/DDV) Multiple Vulnerabilities
Exploit for unknown platform in category web applications ================================================================== Ocean12 Contact Manager Pro SQL/XSS/DDV Multiple Vulnerabilities ==================================================================...
Ocean12 Contact Manager Pro - SQL Injection / Cross-Site Scripting / File Disclosure
--------------------------------------------------------- Portal Name: Ocean12 Contact Manager Pro Version : 1.02 Vendor : http://ocean12tech.com/products/contact Dork: Maintained with the Ocean12 Contact Manager Pro v1.02 Author : PouyaServer , [email protected] Vulnerability : DDV,XSS,SQL...
CVE-2008-5127
Ocean12 Contact Manager Pro 1.02 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to o12con.mdb...
CVE-2008-5127
Ocean12 Contact Manager Pro 1.02 stores sensitive data under the web root (o12con.mdb) due to insufficient access control, enabling remote retrieval of sensitive information via direct requests. This CVE (CVE-2008-5127) is documented with an affected product and vulnerable file, and the available...
CVE-2008-5127
Ocean12 Contact Manager Pro 1.02 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to o12con.mdb...